CVE-2004-0214
Last modified
CVE-2004-0214 is a vulnerability of currently unknown severity. Buffer overflow in Microsoft Internet Explorer and Explorer on Windows XP SP1, WIndows 2000, Windows 98, and Windows Me may allow remote malicious servers to cause a denial of service (application crash) and possibly execute arbitrary code via long share names, as demonstrated using Samba.. EPSS estimates a 51.01% chance of exploitation in the next 30 days.
Description
Buffer overflow in Microsoft Internet Explorer and Explorer on Windows XP SP1, WIndows 2000, Windows 98, and Windows Me may allow remote malicious servers to cause a denial of service (application crash) and possibly execute arbitrary code via long share names, as demonstrated using Samba.
Metrics
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Microsoft | Internet Explorer | 6.0.2900 | — |
| Microsoft | Windows 2000 | All versions | — |
| Microsoft | Windows 98 | All versions | Gold |
| Microsoft | Windows Me | All versions | — |
| Microsoft | Windows Xp | All versions | Sp1 |
References
- http://seclists.org/lists/bugtraq/2004/Apr/0322.htmlVendor Advisory
- http://seclists.org/lists/fulldisclosure/2004/Apr/0933.htmlVendor Advisory
- http://www.kb.cert.org/vuls/id/616200US Government Resource
- http://seclists.org/lists/bugtraq/2004/Apr/0322.htmlVendor Advisory
- http://seclists.org/lists/fulldisclosure/2004/Apr/0933.htmlVendor Advisory
- http://www.kb.cert.org/vuls/id/616200US Government Resource
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2004-0214?
How severe is CVE-2004-0214?
How do I fix CVE-2004-0214?
Are you affected by CVE-2004-0214?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST